Preventing Malicious Processes by Validating the Command Authority of Commands Between Network Equipment

1. A method, comprising: identifying, by validation equipment comprising a processor, a resource allocation communication between first network equipment and second network equipment via a network, wherein the resource allocation communication comprises a command authority and an allocation command, wherein the network establishes intercommunication between the first network equipment and the second network equipment via a multipath input output protocol interface, and wherein the multipath input output protocol interface establishes the intercommunication using a group of protocol standards comprising at least one of a non volatile memory express over fabric protocol, a non volatile memory express over transmission control protocol, or a small computer system interface over fiber channel protocol; based on the resource allocation communication, selecting, by the validation equipment, a validation source to validate the command authority for execution of the allocation command by the second network equipment; based on a failure to validate by the validation source, blocking, by the validation equipment, execution of the allocation command by the second network equipment, wherein blocking the execution of the allocation command comprises preventing delivery of the allocation command to the second network equipment; in response to the blocking, receiving, via the multipath input output protocol interface, an updated source of approved allocation command processes, and communicating to the first network equipment via the multiple input output protocol interface, a logical unit number associated with storage array equipment to which the updated source of approved allocation command processes has been persisted; and in response to determining, based on the logical unit number, that the first network equipment has transferred the updated source of approved allocation command processes, setting, via the multipath input output protocol interface, a permission associated with the logical unit number to a read only permission.

2. The method of claim 1, wherein blocking the execution of the allocation command further comprises instructing the second network equipment to ignore the allocation command.

3. The method of claim 1, wherein the second network equipment comprises storage array equipment.

4. The method of claim 1, wherein the validation source selected comprises a source of valid command authorities for the allocation command.

5. The method of claim 1, wherein the allocation command comprises a removal command.

6. The method of claim 1, wherein the allocation command comprises a write command.

7. The method of claim 1, wherein the resource allocation communication employs a multipath input output protocol for communication.

8. The method of claim 1, wherein the command authority comprises a process executed by the first network equipment.

9. The method of claim 8, wherein the process comprises a malicious process that uses cryptography to improperly restrict access to stored data.

10. The method of claim 1, wherein the command authority comprises a thread executed by a processing component of the first network equipment.

11. Data storage equipment, comprising: a processor; and a memory that stores executable instructions that, when executed by the processor, facilitate performance of operations, comprising: establishing a connection to network equipment via a network, wherein the network establishes the connection between the network equipment through a multipath input output protocol interface, and wherein the multipath input output protocol interface uses at least one of a group of protocol standards comprising a non volatile memory express over fabric protocol, a non volatile memory express over transmission control protocol, and a small computer system interface over fiber channel protocol; receiving an indication that execution of a command, communicated via the connection, to modify stored data was blocked, wherein the execution of the command was blocked by having prevented communication of the command to the data storage equipment by validation equipment, wherein a process of the network equipment, which issued the command, failed a validation check by the validation equipment; based on a failure of the validation check being determined to have occurred, receiving, via the multipath input output protocol interface, an updated source of approved command processes, and communicating, to the network equipment via the multipath input output protocol interface, a logical unit number associated with storage array equipment to which the updated source of approved command processes has been persisted; and in response to determining, based on the logical unit number, that the network equipment has retrieved the updated source of approved command processes, setting, via the multipath input output protocol interface, a permission associated with the logical unit number to a read only permission.

12. The data storage equipment of claim 11, wherein the indication comprises an instruction not to execute the command, and wherein the instruction was generated by the validation equipment to prevent the command from executing.

13. The data storage equipment of claim 11, wherein the validation check comprises comparing credentials of the process with a source of valid credentials for issuing the command.

14. The data storage equipment of claim 11, wherein the connection was established based on a multipath input output protocol.

15. A non-transitory machine-readable medium, comprising executable instructions that, when executed by a processor of a security device, facilitate performance of operations, comprising: identifying a command communicated by a network device and a storage device equipment via a network, wherein the command was generated based on execution authority for executing the command by the storage device, wherein the network communicates the command from the network device and the storage device through a multipath input output protocol interface, and wherein the multipath input output protocol interface executes at least one of a group of protocol standards conforming to a non volatile memory express over fabric protocol standard, a non volatile memory express over transmission control protocol standard, and a small computer system interface over fiber channel protocol standard; based on the execution authority, employing a validation process to test validity of the execution authority for the command to be executed by the storage device; based on the validation process determining that the execution authority is invalid, blocking activity based on the command from occurring at the storage device, wherein blocking the activity based on the command from occurring at the storage device comprises preventing delivery of the command to the storage device; in response to the blocking activity, receiving, via the multipath input output protocol interface, an updated source of approved command processes and communicating, to the network device via the multipath input output protocol interface, a logical unit number associated with storage array equipment to which the updated source of approved command processes has been persisted; and in response to determining, based on the logical unit number, that the network equipment has transferred the updated source of approved command processes, causing, via the multipath input output protocol interface, the storage array equipment to set a permission associated with the logical unit number to a read only permission.

16. The non-transitory machine-readable medium of claim 15, wherein blocking the activity based on the command further comprises controlling the storage device not to execute the command.

17. The non-transitory machine-readable medium of claim 15, wherein the command comprises a command to improperly restrict access to data stored by the storage device.

18. The non-transitory machine-readable medium of claim 15, wherein the command comprises a removal command.

19. The non-transitory machine-readable medium of claim 15, wherein the command comprises a write command.

20. The non-transitory machine-readable medium of claim 15, wherein the multipath input output protocol interface was established based on a multipath input output protocol.